biscotti is a new Rust crate for handling HTTP cookies on the server side. It aims to provide a simple API for handling cookies while also covering more advanced cookie scenarios. The crate distinguishes between request and response cookies, provides centralized management of cryptographic guarantees, and supports rotating signing/encryption keys over time. The crate can be used alongside the cookie crate and is designed specifically for server-side cookie handling.
Table of contents
TL;DRTable of ContentsCookies in RustWhy biscotti ?Design goalsCookies' crash courseRequest and response cookies are differentCookie collectionsRequest cookiesResponse cookiesSigned and encrypted cookiesConclusionSort: